security Automation EngineerANZ
Salary: Agreement
Work form: Full time
Posting Date: 18/06/2025
Deadline: 05/06/2021
Be exposed to different stakeholders
Work with a team that values collaboration and innovation
Join an organisation that supports diversity and equal opportunity employment
Role Location: 30F MDC 100 Building Eastwood City
Shift Schedule: Morning shifts will be adhered to
Your Mission
The mission of the Security Automation Squad is to improve productivity of the cyber security operations functions through automation to enable us to better protect the bank from cyber threats while ensuring that our systems remain secure and available. We want our customers to feel secure keeping their data and banking with us.
About the role:
This role is an exciting opportunity to join the ANZ Cyber Security Domain as a Security Automation Engineer, which will require a combined strong security engineering and/or incident response background with practical programming and scripting experience.
This role will also require a deep understanding of automating incident response tasks and activities and will work closely with the Security Operations Centre and more broadly with other parts of the Security domain to implement custom orchestration & automation needed to accelerate innovation at the domain level.
Key priorities include:
Drive the overall technical aspects of the orchestration and automation of Security Operations Centre (SOC) playbooks including initial development, refinement and optimisation
Build, implement and refine automation playbooks and response actions to enhance, automate or augment tasks and activities primarily within Security Operations Centre and the broader Security Domain
Develop clean, reusable and modular code for security automation services
Develop custom API to support integration between SOAR and various security tools and products utilise by the SOC as required
Develop and implement an efficient playbook lifecycle management process to account for updates, versioning and retiring/decommissioning of playbooks.
Support integration between SIEM, SOAR and SOC ticketing to automate enrichment and response activities
Support ad-hoc DevOps requests to develop functionality to support SOC and Security Domain.
Support the relevant stakeholders to identify and develop scenarios for automation to optimise tooling and processes that are currently performed manually by leveraging the SOAR platform.
Consider value delivered by potential automation scenarios to prioritise these based on whether the benefit of the automation is likely to outweigh the time spent implementing and maintaining the automation scenario.
Identify opportunities to use automation to enhance our cyber security resilience rather than simply automating current legacy manual processes.
Work with existing automations and platform engineers to improve upon existing playbooks, test, remediate and fix identified defects to ensure optimal playbook performance
Complete documentation of work completed so others within the team can easily understand and build upon it.
Articulate user requirements in the playbook design and ensure the solution design meets the defined requirements
Mentor peers to build the capability in the team.
Who are you?
A team player - You know we only win if we all win. You recognise and value the different perspectives and skills your colleagues bring. It is not about being a hero but jumping in and contributing to the successful delivery of the team's mission
The customer's biggest fan - You demonstrate a thirst for better understanding the customer and define the problem and develop solutions through their eyes
Comfortable being uncomfortable - You are comfortable with uncertainty and have the ability to effectively manage yourself through ambiguity and change
Continuous improvement junkie - You constructively challenge the status quo, look for better ways to do things and passionately advocate continuous improvement
Committed to your own and other's growth - You strive to stretch and grow yourself and others by identifying your own development areas, seeking feedback and providing feedback to others to help them learn and grow everyday
A problem solver - You are energised by tackling complex problems and use critical thinking, your network, skills, knowledge, and available data to drive better outcomes for our customers and the bank
Risk savvy - You build sustainable solutions that protect customers, stakeholders and the community
What you bring to the Security Automation Squad
Proven years of experience in Information Technology; including proven years of work experience in Security Automation and/or DevOps function
Strong Knowledge and technical hands on engineering/DevOps experience using SIEM, SOAR, Case Management systems such as Phantom, ServiceNow and Splunk ES or similar.
Experience using a scripting language such as Python to integrate with other systems and develop automation, orchestration and response actions.
Demonstrable experience with API integration using a scripting language such as Python or JavaScript
Demonstrable experience with API integration and research
Demonstrable experience or understanding of cyber security incident response activities.
Exceptional communication skills, able to articulate complex problems and apply strong problem solving capabilities with proven ability to translate analysis to actionable items and/or recommendations
Good understanding of Rest API's
Proficient in source control (preferably GIT)
Solid understanding of Windows/Linux/Unix OS
Strong debugging and troubleshooting skills
Should have a strong understanding of network and platform security strategies, algorithms and implementing practices
Experience in service management (incident, change & problem management)
A desire to continuously develop your knowledge and skills to keep up with a rapidly changing threat landscape and bring innovative ideas into the squad.
A track record of successful execution and delivery of tangible outcomes.
About ANZ
At ANZ, everything we do boils down to 'why' - our purpose - to shape a world where people and communities thrive. We're just as focused on seeing our people thrive as well as our customers. We'll give you every opportunity to develop your career.
We are responding faster to changing customer requirements, focusing on the things that matter the most, energising our people, eliminating waste and reducing bureaucracy.
A happy workplace is a thriving one. So in order to attract and keep the best talent, and say thanks for the hard work, we make sure all our employees are rewarded.
ANZ recognises the value of an inclusive and diverse work environment. We take pride in the diversity of our people and encourage applications from diverse candidates. Our recruitment decisions are based on the key inherent needs and requirements of each role, and candidates are selected based on their unique strengths and characteristics.
To find out more about working at ANZ or to view other opportunities visit You may apply for this role by visiting ANZ Careers and search for reference number Taleo Job Code PHI007111. #GD4.4
ANZ
Work with a team that values collaboration and innovation
Join an organisation that supports diversity and equal opportunity employment
Role Location: 30F MDC 100 Building Eastwood City
Shift Schedule: Morning shifts will be adhered to
Your Mission
The mission of the Security Automation Squad is to improve productivity of the cyber security operations functions through automation to enable us to better protect the bank from cyber threats while ensuring that our systems remain secure and available. We want our customers to feel secure keeping their data and banking with us.
About the role:
This role is an exciting opportunity to join the ANZ Cyber Security Domain as a Security Automation Engineer, which will require a combined strong security engineering and/or incident response background with practical programming and scripting experience.
This role will also require a deep understanding of automating incident response tasks and activities and will work closely with the Security Operations Centre and more broadly with other parts of the Security domain to implement custom orchestration & automation needed to accelerate innovation at the domain level.
Key priorities include:
Drive the overall technical aspects of the orchestration and automation of Security Operations Centre (SOC) playbooks including initial development, refinement and optimisation
Build, implement and refine automation playbooks and response actions to enhance, automate or augment tasks and activities primarily within Security Operations Centre and the broader Security Domain
Develop clean, reusable and modular code for security automation services
Develop custom API to support integration between SOAR and various security tools and products utilise by the SOC as required
Develop and implement an efficient playbook lifecycle management process to account for updates, versioning and retiring/decommissioning of playbooks.
Support integration between SIEM, SOAR and SOC ticketing to automate enrichment and response activities
Support ad-hoc DevOps requests to develop functionality to support SOC and Security Domain.
Support the relevant stakeholders to identify and develop scenarios for automation to optimise tooling and processes that are currently performed manually by leveraging the SOAR platform.
Consider value delivered by potential automation scenarios to prioritise these based on whether the benefit of the automation is likely to outweigh the time spent implementing and maintaining the automation scenario.
Identify opportunities to use automation to enhance our cyber security resilience rather than simply automating current legacy manual processes.
Work with existing automations and platform engineers to improve upon existing playbooks, test, remediate and fix identified defects to ensure optimal playbook performance
Complete documentation of work completed so others within the team can easily understand and build upon it.
Articulate user requirements in the playbook design and ensure the solution design meets the defined requirements
Mentor peers to build the capability in the team.
Who are you?
A team player - You know we only win if we all win. You recognise and value the different perspectives and skills your colleagues bring. It is not about being a hero but jumping in and contributing to the successful delivery of the team's mission
The customer's biggest fan - You demonstrate a thirst for better understanding the customer and define the problem and develop solutions through their eyes
Comfortable being uncomfortable - You are comfortable with uncertainty and have the ability to effectively manage yourself through ambiguity and change
Continuous improvement junkie - You constructively challenge the status quo, look for better ways to do things and passionately advocate continuous improvement
Committed to your own and other's growth - You strive to stretch and grow yourself and others by identifying your own development areas, seeking feedback and providing feedback to others to help them learn and grow everyday
A problem solver - You are energised by tackling complex problems and use critical thinking, your network, skills, knowledge, and available data to drive better outcomes for our customers and the bank
Risk savvy - You build sustainable solutions that protect customers, stakeholders and the community
What you bring to the Security Automation Squad
Proven years of experience in Information Technology; including proven years of work experience in Security Automation and/or DevOps function
Strong Knowledge and technical hands on engineering/DevOps experience using SIEM, SOAR, Case Management systems such as Phantom, ServiceNow and Splunk ES or similar.
Experience using a scripting language such as Python to integrate with other systems and develop automation, orchestration and response actions.
Demonstrable experience with API integration using a scripting language such as Python or JavaScript
Demonstrable experience with API integration and research
Demonstrable experience or understanding of cyber security incident response activities.
Exceptional communication skills, able to articulate complex problems and apply strong problem solving capabilities with proven ability to translate analysis to actionable items and/or recommendations
Good understanding of Rest API's
Proficient in source control (preferably GIT)
Solid understanding of Windows/Linux/Unix OS
Strong debugging and troubleshooting skills
Should have a strong understanding of network and platform security strategies, algorithms and implementing practices
Experience in service management (incident, change & problem management)
A desire to continuously develop your knowledge and skills to keep up with a rapidly changing threat landscape and bring innovative ideas into the squad.
A track record of successful execution and delivery of tangible outcomes.
About ANZ
At ANZ, everything we do boils down to 'why' - our purpose - to shape a world where people and communities thrive. We're just as focused on seeing our people thrive as well as our customers. We'll give you every opportunity to develop your career.
We are responding faster to changing customer requirements, focusing on the things that matter the most, energising our people, eliminating waste and reducing bureaucracy.
A happy workplace is a thriving one. So in order to attract and keep the best talent, and say thanks for the hard work, we make sure all our employees are rewarded.
ANZ recognises the value of an inclusive and diverse work environment. We take pride in the diversity of our people and encourage applications from diverse candidates. Our recruitment decisions are based on the key inherent needs and requirements of each role, and candidates are selected based on their unique strengths and characteristics.
To find out more about working at ANZ or to view other opportunities visit You may apply for this role by visiting ANZ Careers and search for reference number Taleo Job Code PHI007111. #GD4.4
ANZ
Other Info
Philippines
Permanent
Full-time
Permanent
Full-time
Submit profile
ANZ
About the company
ANZ jobs
Philippines
Principal Systems Engineer, ServiceNow Automation Engineer
Boehringer Ingelheim
MetroManila, Manila, MuntinlupaAgreement
Position security Automation Engineer recruited by the company ANZ at , Joboko automatically collects the salary of , finds more jobs on Security Automation Engineer or ANZ company in the links above
About the company
ANZ jobs
Philippines